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AN INFORMATION STORAGE SYSTEM 



FIELD OF THE INVENTION 

The present invention relates to an information storage system, and in particular to a 
5 process and sysiem for storing information having a predetermined use which requires said 
information to be secured. 



BACKGROUND 

The secure storage of electronic information is a major concern for many organisations. In 
1 0 particular, the storage of customer information creates risks of privacy violations and theft 
of potentially valuable information. For example, many organisations store credit card 
information for their customers. The storage of a customer's credit card infonnation 
obviates the need for the customer to re-enler the same credit card number, expiry date, 
and card name every time a credit card transaction is processed. Organisations with the 
15 ability to avoid this inconvenience and process transactions rapidly are likely to be morc 
attractive to their customers. For example, the storage of credit card information enables 
the use of so-called 'one click' purchasing over the Internet, as described in US Patent 
5,960,411, thereby increasing the completion rate of online purchases. Moreover, ttie 
storage of sensitive information such as credit card numbers avoids the need to re-transmit 
20 the infonnation over potentially insecure conununications networks, making it less 
vulnerable to theft during transmission, by transmission monitoring, for example. 



On the other hand, the storage of such infonnation is unlikely to ever be totally secure, and 
the stored information is always at least potentially vubierable to theft by hackers, 
maUcious staff, contractors, cleaners. IT services suppliers, etc. This risk is always present 
for any organisation that keeps such infonnation on record. The loss of such information is 
embarrassing and is potentially exbremely cosfly for the organisation. It is desired to 
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provide a process and system that alleviate the above difficulties, or at least provide a 
useful alternative. 

SUMMARY OP THE INVENTION 
5 In accordance with the present invention there is provided a system for Storing information 
having a predetermined use which requires said information to be secured, including: 

a client system for generatmg fu^t data and second data from said infoimation, 
such that said information can be generated from said first data and said soeond data, and 
said predetermined use is infeasible with only one of said first data and said second data. 
J 0 and for storing an identifier with said firet data; and 

a remote server for storing said second data with an encoded identifier generated 
from said identifier. 

The present invention also provides a system for storing information having a 
15 predetermined use which requires said infonnation to be secured, including: 

a client system for storing an encoded version of said information Ind an identifier 
the encoded information having been generated from fir« data of said information and ari 
encoded-version of second data of said information, wherein said infom»ation can be 
generated from said first data and said second data, and said predetermined use is 
20 infeasible with only one of said first data and said second data; and 

a remote server for storing said second data and an encoded identifier generated 
from said identificn 

wherein said client system is adapted to send at least the encoded version of the 
second data to said remote server. 



25 



tie present mvention also provides a process for storing information having a 
predetermined use which requires said infom,ation to be secured, including generating first 
data and second data from said information, such that said information can be generated 
from said first data and said second data, and said predetemiined use camiot be performed 
30 using only one of said first data and said second data. 



07-10-' 04 16:54 FROM- T-137 P011/058 F-136 

PCT/AU03/00433 



10 



15 



The p«5cnt invention also provides a process for storing information having a 
predelemined use which requires said infonnation to be secured, including: 

receiving an identifier and first data from a client system having second data, said 
first data and said second data being such that said Infonnation can be generated from said 
first data and said second data, and said prcdetennined use cannot be performed using only 
one of said first data and said second dataj and 

storing said first data with an encoded identifier generated from said identifier, 
without storing said identifier. 



The present invention also provides a process for generating infonnation having a 
predetermined use which requires said infonnation to be secured, including: 

determining, on the basis of an identifier, first data of said information; 
receiving second data of said information from a remote server; and 
generating said infonnation from said first data and said second data, wherein said 
predetermined use is infeasible with only one of said first data and said second data. 



The present invention also provides a process for generating information having a 

predetermined use which requires said information to be secured, including: 
20 receiving an identifier; 

determining first data of said information on the basis of said identifier; and 
sending said first data to a client system to enable said information to be generated 

from said first data and second data of said information, wherein said predetermined use is 

infeasible with only one of said first data and said second data 

25 

The present invention also provides a process for generating information having a 
predetermined use which requires said information to be secured, including: 

determining, on the basis of an identifier, an encoded version of said informatior», 
the encoded information having been generated from first data of said information and an 
30 encoded version of second data of said information; and 
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sending said identifier and said encoded infonnation to a remote server for 
generation of said infonnation fi-om said first data and said second data, wherein said 
prodetennincd use is infeasible with only one of said first data and said second data. 

5 The present invention also provides a process for generating infonnation having a 
predetennined use whidi requires said information to be secured, including: 
receiving an identifier and an encoded version of said iiiformation; 
deteraiining first data of said informaiion on the basis of said identifier; 
generating said infonnation fh>m said first data and second data of the encoded 
10 information, wherein said predetennined use is infeaaible with only one of said first data 
and said second data; 

using said infonnation for said predetermined use; and 
discarding said information. 

15 Preferred embodiments of the present invention provide processes that allow an 
organisation to store only part of a customer's credit card number locally on a client 
system, sending the other part to a ien,otely located server for safe keeping. This reduces 
the risk of thefl of the credit card number because neither the client system nor the server 
keeps a record of the entire number. Neither is the entire number ever transmitted a 

20 single transmission between the client system and the server. When a charge needs to be 
appUcd to such a card, the two parts are extracted from the respective systems and then 
briefly united, solely for the purpose of sending a transaction to a banking system, and then 
the record of the fiill number is destroyed again. Thus the risk of credit card nuiiiber theft 
is greatly reduced. 



25 



BRUEP DESCRIPTION OF THE DRAWINGS 



Preferred embodiments of the present invention are hereinafter described, by way of 
example only, with reference to the accompanying drawings, wherein: 

Figure 1 is a schematic diagram of a preferred embodiment of an information 
3U storage system; 
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Figure 2 is a block diagram of a client system of the information storage system- 

Rgure 3 is a block diagram of an infonnation server of the infomaaiion stoLc 
system; ^ 

Figure 4 is a flow diagnuii of an infomiaUon storage client process executed by the 
5 client system; 

Figure 5 i« a flow diagran, of an information storage server process executed by the 
mfoimatioii server, 

Figure 6 is a flow diagram of a firat prefetmi cmbodimem of a transaction client 
process cxBcuied by the client system; • 

10 Figure 7 ia a flow diagram of a fl«t preferred embodiment of a transaction server 

process executed by the infonnation server; 

Figure 8 is a flow diagram of a second preferred embodiment of a transaction client 
process executed by the client system: 

Figure 9 is a flow diagram of a second preferred embodiment of a transaction 
15 server process executed by the information server; 

Figure 10 is a fioW diagram of an information deletion diem process executed by 
the ch^t system; and 

Figure n is a flow diagram of an information deletion server pmcess executed by 
the mfomiation server 

20 

DETAU^D DESCRIPTION OPTHB MUEIBRRED KMBODIMBNT 
As d„,«,io Figure l.'«>infcnn.tion«or.g..ya™i,„l„desBH„fi,nMUons«ve, 102 a 
ol.«a «J«em 104. . .ewr. had. .crva: 106. ™^ to «„ „3e .f a>c second eml»dfa=„^' a 
trans«tion s«ver 108. Th. « tec^onnecW by . c«»,»ic. Wnchvo* i lo 
a M the totemet. The cli«, .5^ ,04 „d ,02. 106. m axe 

con^ syK™,.. «.ch „ fcttP- x8W,„ed p=,„na, computer sy^cms running a 
Microsoft Window.". oper«tng system. However, .0 improve p,rfo„„.nce of 
.nfcn««on etoregc ,y««^ fl„ .^rvers 102, 106, log can alternatively be high- 
I«««m«ce nenvork «rvers. such as SunFirex" servers avaiteble 6o„ Sun 
Mcmsyst^s. Inc~. As shown in Pigu„ 2. .he client system 1 04 includes client modules 
20.. . cu«on,e, database 204, ami new cusn>mer data 206. The client system 104 
opncally includes tmnsaoton processing modules 208. as describ«t below. A. show, in 
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Figure 3. me inft^alion server 102 iaoludes server modules 302. a™i a, infonnaaon 
"pxry 304. The infcnnaUon server 102 may include transaction pro««i„g modules 208. 

Th..™p„„«,„ ,02 to ,08 Of the info^ation storage system execute information storage 
5 process^, that provide secure storage of s«,sitive or valuable infomation S«h a. credit 
card numbers by dividing the information into at ,^ *vo compona«s auch fta. flie 
components do no, have individual worth or us. vduo. «,d the toron»«ion can only be put 
to Its nomta, sensitive or vduable use when rea.s«„bl«l ftom iho component. TOe 
components are stored separately differ, ^y,i^ «u> are only .«,sembled 

10 When required for a predetemnn^l u«.. ITe «ass«nbl«i inibnnation Is de«„,yed a. «K,n 
es .t has been used, a the case of a credit catd numb.,, this «nail. dividing the number 
n«o fcvo portion,. stoHng fte poninns »q,.„,.Iy, ,nd reassembUng th«„ process a 
crcd., c»d transaction. A. .oon a, the tnmsactloa details have been sent to an ac,uiring 
mst.tu,ion for completing the transaction. B,, ,«,s«nbled number Is destmyed As neither 
15 p«,lon Of U.. cr«li, card number can be «»d to proees. a financial transacUon without the 
other po«ion. theft of a database cntaming «,her porUon of the number is of linle 
cM-equ-K. unl«» the complementary portion is also ob,«ned. Moreover, even if both 
toabases are stote.. the compon«.ts of a credit cam number cannot be man^hed up 
heca«e dte Ctmtponent. do not share any database keys, as described brtow. Furth«mor. 
M) *«<bl.fm«sllm„wh.wtogenera,ethecreditcardn»mb.r6omi,sc«npo.»n,portio«. ' 

In »y case, the communication of each portion over the network 1 10 is digitally dg„cd 
«d encrypted using ,28-bi, encrypUo^, ^ ^ 

eavesdroppmg on the communications. In .he de«»bed mbodiment. the infom«,io„ 
.5 storage and transaction p«,cesscs are implemented « .oftware modules executed by th. 
system components ,02 ,„ los. However, it ^ be apparent that module, of the system 
.nay be drstnbuted over a variety of locations, and th« a, least par, j,^ 
altonahvely implemented as on. or more dedlc«ed hardware components, such a. 
application-specific integrated circuits (ASICs). 
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Hie client system 104. may be owned and operated by an organisation that wishes to 
maintain information on its customer., and. in particular, wishes to store credit card 
infonnat.on for its customers. Customer infonnation is typically maintained in a customer 
database, such as the custon:cr database 204 stored on hard disk storage of the cUent 
system 104. The organisation stores this infom^ation in the database 204 using a unique 
custoxner number as a database key under which the information is stored The 
mformation may include, for example, the customer's name, address, credit card 
.nfor^auon, and account data, such as a standing t«„sacrion amount, as shown in the table 
below. 



Customer number: 


1025543 


Standing transaction amount: 


$25 


Cardholder; 


Koger W Smith 


Card types 


VISA 


Expiry date: 


05/03 


Card number: 


3647 3495 2341 1942 



Organisation-spocific 
information 

Generic credit card 
information 



However, this customer data is vukerable to theft, constiturins a significant risk on the 
part of the custonacr and the organisation storing the data. To counter this risk, the 
mfonnahon storage system divides sensitive information into at least two components In 
the case of credit card information, the credit card number is divided into two portions 
me credit card number is stored using an information storage process, comprising a dleni 
storage process of the client modules 202 executed by the client system 104 and a storage 
process of the server modules 302 executed by the informaUon server 102. as described 
below. 



N«, cu«on.« in6.„n^ ^ ^^^^^ 

y>^lO*.>«l«,^„r^ ^ 206. For a new cu«on,«, Ms info,n,aM„„ 

.»«aBy »=l«d«, aettib oru» c»s.o„«. i^t^i„g ^ 
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c«.Uc«ng c«d.. a^oc. « e«u« «.a. .he .u«omcr doca no. oo„«i,u,. a bad cr^, riak. 
5 A«» «„ credi. cani de,aU, have b.e„ valida.^,. «.c cUe„, sy,,e„ ,04 exccmes a cli™, 

*«c .rcdi: caM number into .wo portona. I„ the d«^.ad «.b«U™o„ra 

2 . n^b. U apH. ^ two potion, „o„pHai„, , ^ ^^^^^"^ 

d,grts of the number. "wUl be app.™,u^ft„^^„^,^ " 

wa.^«. long . u.. di..„n used . ^ ^ ^ , ^ ~ 

»e»age . con^ including , unique customer number aaaigned .0 oua^^^ I 
*e first portion aa fcUowa- g" o 10 tlie cuatomer, and 



the first portion sls follows: 
15 I 1023543 I 3495 2341 -| 



30 



At step 406, this message is digitally sianed «. 

venerated 1™™ ,1,. *^ ^ message. , hash value is 

g^c^ed »om the message con.«... and .he resuIUng ^ 

RSA pub 0 .rey en.rypt.on schcm. described a. Mtfc^ ^ ., ^„ 
appren. .ha. other encr,^«on sch«n« can ahen^atively be ua«t The cncr^ptlTh^ 
b«ng *. ..g„ah.re of *e cUen. sysn« .04. is added » fto message, as «>, ^ 



At nqi 408, the entire message is enerypt«i usin. • ™.m- 
2S !■«,_..• »"yp™ using a pubhc enciypBon key of ttie 
•» mfeimation server 102. Thia ensures Hum .k. „ y m uie 

w wisures that the message can only be deaypted bv th, 

>«^c. server 102. A. stq, 4.0. the enc^tcd message is sen. .„ the^Z. 

»n«r .02 using a .^.^1. .ommumca,ions protocol, such I TCP© ^ 
.0 reeeivo a reply Ihm. the Infomration Lr . 4^2 

W A. *. eH..„ a^ ,04 waits for the reply, fl.^ information .«v.r 102 executes «, 
mfcnnahon ator^ge server process, as shown in fi^ 5 A. step yL «. " 

J, step 502, the enoi>pted 
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message sent from the client 104 is received by the infonnation server 102. At step 504 
the nicssage is decrypted using the information sewer's private koy. Once decrypted the 
contents of the message are verified using tl,e digital signature of the client system 104 at 
step 506. This includes decrypting the signacure lo obtain the hash value included in the 
5 message. The decryption process uses the client system's public key. which, assuming the 
chem system 104 has not been compromised, confirms that the message originated flt,m 
the client system 104. Then a hash value is generated ftom the message contents (ignoring 
the digital signature itself), and compared with the hash value received fiom the client 
system 104. If the two hash values are identical, this indicates that the message remains 
10 intact and has not been altered in transit or otherwise centred. The infonnation 
se^er 102 has now verified the message, and has the customer number and middle eight 
digits of the credit card number^ as follows: 



|lUZ5S43 j 3495 2341 | 



15 At step 508. the customer number is hashed using ,he secure hash server lOd. That is the 
customernumbcr is 8«lt to the secure hash server 106 over the mtemet UO using TCP/IP 
All communications between the mformation server 102 and the secure hash server 106 are 
digitaUy signed and encrypted, as described above, to fUr^er enhance security. The secure 
hash server 1 06 generates a hash value from the customer number using a robust one-way 

20 cryptographic hash function known only to the secure hash server 106. For example the 
secure hash server 106 could provide the following one way transfom,ation between the 
customer number and a corresponding hash value: 



j 1025543 hashes to 2093 S40g 



-5 Hash a^r^i,^ ^^^^^^^^ 

h«h lu«fion » if boo. d» c««« .y«em 104 and the tafo^ation .en.er 102 

C»«0»« da.*... 204 «Ki *e regis«y 304. Such . pr=f«™. ^ ^ 
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on modifications of standard ha.h functions. For example, a hash function that f5„t 
exchanges selected digits of the customer nun^ber and then uacs this as input to an MD5 
hash function could be used. 

S Tkc r«ulu„c hash viu, i. sen, fio™ tt,c secure hash s«ver 106 to ft. infom^on 
^en,er 102. wh^ i, i, used as . daubas. key for storing fte middle eight digits of flie 
customer's credit card number at rtcp 310. Th., is. a« par,!., ^ ^ ^ 

in the registo- 304. indexed by the hashed oMtomcr number, as fellows: 



10 



Key 


Data 


2093 S408 


3495 2341 



Th. secure hash serv„ 106 is used noher .h«, a ha.h (taction stored o„ the i„,bnna.i„„ 
serve, ,„ „,der t, p^ide enh«ced security by physically separating the hash 
lunchon from the partial credit card storage. 

IS At step 514. me e,«u, ^ j;^^ are hashed uting the secure hash sen-er lOS- for 
example; ' 

1 3495 2341 bashes to 9394 2934 ~~ 



20 nmnbcr. At step 518. .hi, reply message is digitally .ig„cd. m, includes creating a hash 
value for a» oustotner timber «.d hashed credit card digit, and encrypting ma resulting 
b»h value usmg the private Icey of o.e information ^ 
appears as fbllowa: ^ 



25 



|lU25543 I 93942934 \ Sigi^^ ure a/lS H 



A. step 520. thi. xncssage is enc^ted with the client system's public key. and the 
encrypted reply is sent to the client system 104 at step 522. 



07-10-' 04 16:56 FROM- 



T-137 P019/058 F-136 



PCT/Al)0J/()043J 



11 



R«™ng «, Figure A. the received e„cr,p«d reply i. decrypted using U,e oUcn. 
pnvt. ley ^ «cp 414. and d>e «ply v«ified. a. described above, „ ^ 4J6. A. ««, 
4I». eneoded oredi, card digi« included in fl,e reply are combined with the second 
portion of the „cdi. card number. ,0 fonn an «.„dcd. and presumably invalid, credit card 
n„n,b„ for u,a customer. A. .,cp 420. the encoded .reUt o«d number is stored in U,e 
customer database 204, indexed by the customer ™mber as a d«.ba.. Icy, foUows- 



Customer number: 


1025543 




• « * 


Card number: 


3647 9394 2934 19^ 




• » * 



10 Cons«,u«,Uy. theft of .he customer daubase 204 will no, pn,vide valid credit card 
nuinbors. 



Similarly, the registry 304 stored on the infonnation 



server 102, appear^ as follows: 



15 



20 



Key 


Data 






2093 8408 


3495 2341 


« « « 





As only the p„rt«, of me „«iit card numbw is stored in th. registry 304. thrfl of Ac 
registry 304 „«, doe, not p„^d. ct«Jh can, numbers. Moreover, because ae 
1^304 is i^Jexed by ,b, ^ ^ ^^^^ ^^^^ ^ 

betweo, the or«K. c«,i portion stored to d.e regia,^ 304 and the oompleme«ary portions 
Stored in the c»s«>m.rd.tab.,. 204. I~ orter to B=eonsm«t the credit card nu»,bcrs a 
auef would to have access to the cu.U,m«r d«.basc 204. me regisrry 304. the ha'sh 

toCKm »s«l by the secure hash server I0«. and would ne«. to know how to combine the 
two portions. 
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20 



Although the described embodiment includes dividing the oredit card number in a 
relatively simple manner by extracting the middle eight digits, the credit card number 
could alternatively be divided in more complex ways by. for example, extracting every 
alternate digit. Moreover, thi. could be made even more complex by making the dividing 
sequence essentially unique for each customer, such a, by making it depend upon some 
other attnbute of the customer information. For example, the credit card number could be 
divided by takmg a pseudo-random .ample of the digits deprived flom some other attribute 
for example, the customer's birthdate. or a hash of the customer's name, and so on. It wlli 
be apparent that many complex divUions can be used, making it extremely unlikely that a 
party havmg access to both databases would be able to reconstruct credit card number, 
without also having access to the sequence generation process code. Consequently the 
mfonnatK,n storage system provides a greaUy enhanced level of security over prior art 
Storage systems. 



The mfonnaUon server 102 may be owned and operated by the same organisation that 
owns and operates the client system 104. but may be alternatively owned by a second 
organisation that provides infonnation storage services to client organisations for a fee. In 
order for the client organisation to make use of the customer credit card number, it must of 
course, be reassembled at some point in order to process a credit caM transaction 
l^euon processing is performed using a transaction process, comprising a client 
transaction process of the client modules 202 executed by the client system 104 and a 
transaction server process of the server modules 302 executed by the infonnation' server 
102. TVo preferred embodiments of the transaction process are provided, as described 
25 bdow. 

In a fta pr^tered =mbodim«« of ft, wwacion proc=«. the oUent .yocm 104 «<«=«t« . 
cl.«>.<™«actioapnoco».„*o™ to Figures. Aou«.m«„f*co.B™is.tlonwiUh.,e 
mcunrt charge, by orfmng product. s«vic« of tte cli«,. org»m3a.i<,„ for 

30 ex«nple. Tto might be «*ieved through . o>«omc u^g , ,„b browser appUeluon 
executing on a c^puthtg device to access , web «n,er a«l tnuuiaolio. ongiue (no. 
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of 4e Chen, s^cn, .04 ,u U,^., „o. f„ ex»>p„. „ by so™ oU.« 
- «.P «.2 wH«, „,e encoded .cdU card „™,er of ,he customer is «rfeved 

assigned to the (ransacfaon, as follows: 



Customer Number 
T02S543 


Encoded Credit 
Card digits 


Transaction number 




9394 2934 ^ 


1 99594 



oBivw iu_, ana sent to the infonnation server 102 at <n6 . 

sten ' ^° respectively. At 

step 614, the process waits to receive a rcniv frnm tho . r • 

, receive a reply from the infomiation server 10^ in the 

Figure 7. After receiving the encrypted message at sten 702 tK. 

«. - r . x"cab«ige ai srep /02, the message is decrvoted with 

the infoiroation server 102's private kev at, f^7n^ lypteawith 

at step 706 usin. tl, r ' ^^^^^'^ ^ 

step 706 using tlie chent system I04's digital signature At sien 7nR *k 

number is hashed to generate a database .ey for the rTgis^ sot MsZVTlr^ 
20 used lo retriet/« A* r * • ■> ^ icjjisiry ju4. At step 710, thiS key is 

At s.^ 712. ,«„eved parti., c^iit cart mmte is had«d. and at steo 714 L i, 

values are no. e,«I. Ui«, . rq,|y „ ^ * 

indicafing U..t ,hc customer da. waa JvaKd A,. ^ ^ ™ 

25 at««,73n. i- «l»cs arc equal, fteu 

transaction number, as follows: unique 
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[ 3495 2341 j 99594 " j 
^ eithe. case, the reply is „ signed r^ly is cncr>,.ed u.ng the public 

at steps 722 to 726, respectively. 

5 

R«««ing .o Figure 6. reply d«.,pted « =u„ 616 „,j„g u» pHv«e key of U,o Cicn, 
*e ^.y ,„d.^es « ««r. 0«, 632 Ac ttamacSon « deded and B.c cnor 1. 

tte tra»«ct.on number m the o,igi„I „««ge, u. confte, a«, ,hey are idanticsl If no, 

™u.„g rc,u.« message. (A.mo„gh B,e oBent .n».saction proce„ of Figure 6 ie 

^-d *e pn«ess.„^ of repHes o„ U,e other hand can b, executed a. separate processes 
due to the latencies of,h. various comp„ne„B of the syst«n.) e processes 

/« step 626. *e customed, co^plere credi, cart number i. reconstructed fio„ a., firs, 
po^on cont^ned .n the r^ly receive, 1^ ^ , and the s«=^ 

poroon from the customer database 204. At steo 62a .1, ^ . . ' 
... .. ^ ■"s-'u*. « step 628. the transaction is processed udn- 

ipr^tT" f ' " '^'^ '^-^ ~- Oft 

tr^saction setyer 108. which is owned and opcated by 
a tr^sacuon ™«h as a banfc c^nmunicaHon of the con,p,ete cL.it IZ 

25 number is the only time that fl« oomplotc credit card m.n,h. ■ . 

lnihm,«i«. .. number is transmitted by the 

"S™-..™ storage ayst-a. TOs transnussion is preferably seeded by including a d^eital 
^ Of the CU«. ^ ^,„^ _^ pubul; Of th^ 

^ .^ver ,«,. but c« .«en.«ve.y be scoured by other metis usJby^ 
.™.sac.m.«:^. -'«»*««h«.c security, .be complete credit can, number m'yt 
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sent via a private network rather than a public communications network such as the 
Interact 110. 

Once a,e n-ansaction details have been sent to the transaction acquirer, the credit card 
5 number is destroyed at step 630. and the client transaction process ends. 

In a second preferred en.bodiment of the transaction process, the transaction processing is 
perfomxed by the infonnation server 102, rather than by the client system 104. In this 
embodiment, the client system 104 executes a client transaction process as shown in 
10 Figure 8. At step 802, the customer's encoded credit card number is retrieved from the 
customer database 204. At step 804. a request message is constructed including the 
encoded credit card number, the customer number, and the transaction number as follows- 



Encoded Credit Card number 


Customer Number 


Transaction number 


3647 9394 2934 1942 


1025543 


99594 



15 This request message is then signed, encrypted, and sem to the information server 102 at 
Steps 806 to 810. Wlule the client system 104 waits to receive a reply from the 
information server 102 at step 812. the information server 102 executes a server 
transaction process, as shown in FigurB 9. As in the first prefexwd en*odiment, the 
message is received, decx^ted. a.d verified at steps 902 to 906. and the customer number 

20 IS hashed using the sectixe hash server 106, at step 908. At step 910. the resulting hash 
value is used as a database key for retrieving the middle eight digits of the customer's 
credit card number from the registry 304, as follows: 



25 



1025S43 hashes to 2093 8408 



Key 


Data 


2093 8408 


3495 2341 
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At Step 912, these middle eight digits are hashed using the secure hash server 106, and at 
step 914. this hash value is compared with the hash value provided by the middle eight 
digits of the encoded credit card number included in the message received from the client 
system 104. If the hash Values are not equal, then at step 918 a reply message is created, 
5 mcludmg an en-or code indicating that the customer data was not valid. Alternatively if 
the values are equal, then at step 920 the customer's complete credit card number is 
nxonsimcted. At step 921. the transaction modules 208 of the infonnation server 102 are 
used to send the transaction details, inoludmg the complete credit card number, over the 
Internet UO to the transaction server 108 for final processing. At step 922 the 
10 reconstructed credit can! number, having been used, is destroyed. At step 923 the 
transaction results are received from the transaction server 108 over the Internet 'llO 
Alternatively, if the infonnation server 102 is owned and operated by the same 
organisation that owns and operates the transaction server 108. then communication of the 
customer's complete credit number can be entirely within a secure internal network of the 
15 oigaxusation. After the transaction is complete, a reply message is constructed at step 924 
mcludms the transaction results, and the unique transaction number, as follows: 



Transaction results I 99594^ 



The reply is then digitally signed, encrypted using the client system's pubKc key, and sent 
20 to the client system 1 04 at steps 926 to 930. 



25 



Retumms to Figure 8, the encrypted signed reply message is received at step 812 
decrypted at step 814 and its content verified at step 816. At step 818. the transactioii 
n^nbcr included in the «ply « used to identic the corresponding request, as described 
above. At step 820, the transaction results are processed as required. The transaction data 
can be keyed by the umque transaction number. Any Interception of the reply message in 
and of Itself provides insufficient information to be useful to a third party. Furthemiore, 
the client system 104 never has access to the complete credit oard number. 
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ft » nec^sa^ delete . ou« ^ ^^^^ ^ 

cl.™. .^s«,o„. Ttos « .ehieved through a„ i„fc™a,,o„ d..«i«, p,„e.^ 

..Ub™..c.. U.e Chen, .y,^ . ^^^^ ^ 

" -^-^ " 
P^v.d«. to ,he proc«s. and .he ^ ^ ^ i, ^evcd fton, 

me c«,.„^ d^,„ « .002. A. «ep ,004. a de,.«o„ ^ 

Tjr^ JT T -VP- - - » - ^nro™,.!! 

wn a, F.gm> 11. The infMrnation server 102 receives the deletion 
^.stcpuo:. A.«,p„04..hc».,„..decryp,ed.ndvenfie4 A.:^^ 

0«.a.^.. ft»™«,cr.g„t,y304. A. step I UO. «.cse di.lt. „e hashed and the ha* ^ 
«o<»pa^U,.h. hash value i.,clud«, in the deletion re,„e,,,„e,s^. » ^ZiU2 

beao auecca^iun, deleted, and including the customer number a. foi W 



I deletion success code 1025543 



The ener^ted «„cd r^ ^, ^ ^ ""^ 

U. Figure ,0, ^„ „ ^ J 1 2 Z 

Tliemess.geBdea»t«l«id«,rifi.d..«ep 10,0. ir,M.,er 1012 th 
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isperfonned a, s.ep 10.4. and .he process ends. Oa.e™-ise. « sUp ,o.«. ,.,.^^3 
cred.. «rt .ofonntUion is removed 60m fta cu«omer d.ub«c 204. ™d *e process 

Sig„,fica„,ly, „o pota i„ ,fce deletion process does either 11,= client «„,er 104 or the 
5 mfcnnation sen-er .0. have eccess to .he complete c^, ^ ^ 

mtercepuou of tt,c messages benveen the eW ay^cn, 104 ^ the irfonnation setver 10. 
cannot be direcdy used to obWn a customers credit card namber. 

me inform^Uen storage system provide, a number of b«,efi„. «,me of which have been 
10 dtsoussed above. For e«mpl., ald.ough compn,mise of «.e infection server 102 or me 
Cheat system 104 could also compromise those customer credit oaM account, that were 

oI,». ayatem 104) during d,e peH«. of oompn,miae. this would m uo, compromise 
U,. card accou.^ of other cus*^ because a. no pomt would all of the credit card 
mfonnaoon be conwromia«L Compromiae of bed, *e cus.omcr database 204 and the 
n=gi«,y 304 doea no. conapromiK= credit card numbers, because the secure hash server 106 
« rcu.r»i to associ^e dau r«»,rds m Ore customer database 204 and the rcaisoy 304 
Loss Of the reglsn, 304 would make i. impossible to process transactions. For this reason' 
«m<rt. and aea.re mitroring of fte regis^y 304 is preferred. Similarly, loss of the secwi 
20 ^ server im would make i, ^possible to process transactions. However, backups of 
the secure hash server 106 would address this issue. 

a. sys,«n use. pubhc key cryptography ,0 render the hnka between d.e client .yat«„ 104 
and .^vers .02, .06. lOS secure, «, as to pmvide a«the„a„.i„u of the send^ and U„ 

mtegnty and pnvacy Of a. message. T*eae safc^s are used because of fte dcsirabili.y 
Of separaung .he ^vo diabases phy^ly, ^ ^ „^ ^^^^^ ^ 

Aimough the prefenred embodiments have been described above inters,, r 
irt ^ J , . , «>=»winea aoove m terms of STOred credit 

30 card numbers, tw 11 be apparent that the fivat««,i t,, r«i creau 

th,t ♦ . ^ system is applicable to any kind of infonnat.on 

that meets a number of criteria First the , 

cniena. rim. the mfonnation can be split into two or more parts, 
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»y of which « w,to, value in a.e abs^ of a.c ch. „a,ers. w.y cf cx^pk « 

becau,. .ach pan of 0>= ««, ...hough „,. „ .o„g a. me «... .ouM „ JvTa 

«~-'-of*eo.h„.Secoa«y.«.ch.o™aac„™s,Jah.cl^^^^ 
« .o „akc „g™„ Of any „i,ri„g p^ ^^p,^,,^ 

rtgmeMlon,U>ebctterthcproteo.ton. wncwt this 

For e..n.p,.. a cr^it.^ wiu, 8 n,.ssi„g digi„ „ 
»d «™r by cycling through ... U,c possiMo con,b.„a«o»a. bu, « ouo «,ca,p. per sl„d 
.0 Ous would take over three ye.„. A oredi. c,.. uu„,bcr cauno. he p«..ec,«.Mover t 
3p.mu.g c«a shtgle digi, because oredit can. uu.b«a ar. fon.„l..cd usi,g a chel^'l 
sy^. and a 3i„gle ^ ^^^^^ ^ 

»=™p..: a credits «pi.y d... would he ptotcCed only extremely ^ I 

T T \ » «•» digit (because credit cards are 

typically .asued to expire at most three years in .he atorel .h.„ r ■ 
thafimiw^J!.-. ,■ arc few possibUiaea. If 

Z T, ! t , * "° " '^-«x>^-''««- «k» =-ond two If 

y fir^ and the fourth are spU. off there are only six possibihhes. This Ibur-dlgi, ^an..., 

.0 ~ ""^ ^ — " ^ - 

suoh pre-processing can be done i„ many ways: one exany,le is the g,„er«io„ of a randon, 

6>urt.. „„,b, foura, and sevenm digits of fl« s«,uencc yielding "OSOr'. Thus, the fou. 
„ can be encoded as a cotnbinaUon of the random ae,ue„ce and the Itey Z 
four-d.gi. .ey can be combined with the .«u.om a«,„ence ht L. way , ^ ^ 
.^.^^UM be used as a prcBx or sufox. or h^ ...o tbc randoJsS^:: 

d.v,ded into a first portion and a second portion, a. de«=ribcd above Usinn this „„k a 
^ With as little intbnnatlon content . sing,, binary digit or bit 
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protected, for exaniple. by generating a 32-bit random number and an offset representing 

the bit of interest 

Th. i„fom,a,ic», «orage .ys,em oan be used to pratect many kind, of val^fc information 
For example it can b. uacd ,„ ^oonrely store account fe,.. ^ 

n^bcr,). anancial ,„.n,ia„ (..^,. bailees), names carfholder 

.nfom^non, pa,i«« and «, on. Mor«,v.r. th. »^ e«, be used ,o protect 

muluple Pieces of infi>m,aHon in on. ^.plicaBon. fcr example, in th. „^i, ,^ 
protMting oaidholder dctaiJs in addition to th. er«at cart number. 

Due to the seemingly aAitrary an».g«n«,t. of mnwrfc information (such as credit card 
>nd account numbers), they are weU suited to division and «pa,a,e storage, i, contrast 
textual and cenato other kinds of infonnation are no, in general so well suited to division 
b^ause each component may be -readable' to some degree, depending upon how the 
•nibnnauon is divided. However, if the infonnatiou is flrs, scrambled or otherwise encoded 
m some manner that makes i, unintelligible without the appropriate decodlns step, th«. fl,e 
system can be used ,o effectively divide and smre the encoded i„fo™.tion. Moreover 
most encoding methods require the encoded infom,a.ion to be complete and in«c in orde^ 
to be decoded. In particular, an encrypted item of infemiatio., ,„eh as an encrypted 
20 document, cannot be decrypted if th. enc^tcd doeumo.. is no, cotnplete. AccoMingly a 
decuman, could be encrypted and then divided into portion. «„t are ,»red „ 
described above. ^' 

™s provides secure atorag. of documents with ,rbit.«y c„n.«„. I, wi„ be apparent that 
25 tins process .s no, resWeted to tex, documents, bu. can be used to secu«ly store any ,ype 
of mfonnation or data that can be represented elechonicaHy. 

FinaUy. the apBttim: into nvo eomponentt is simple and in mos, cases suffici«,t However 
« wn be appa^r. that tfce syatem can be ex^nded to divide infon».„<„ J, 
30 two components. fl«her reducing th. risk of compromise by coUusion. However, i. wUl bo 
W««.t tha, i, is not necessary to u« £urfl,.r division a, dl. Any method d,a. generate. 
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wo or more components from input information. fix,m which the input information can be 
re-gcnerated. and where the components are not in themselves useful, valuable, or 
mtelligible (as the case may be) can be used. 

5 TIae potential for temporary failure of the system due to unavailability of access to a 
working server (e.g., the information server. 102 or the secuixs hash server 106) can be 
reduced by the use of multiple synclironised servers. This increases the overall availability 
Of the system, but introduces additional complexity in managing connections to multiple 
servers and Qieir synchrom'sation. However, techniques to synchronise multiple servers are 
10 known and established. 



For example, to manage such complexity, the functionality of the client system 104 can be 
divided so as to separate the handling of the interaction with multiple servers (and their 
synehiomsation) from other parts of the client functionamy. creating a three-tier 
15 architecture: client(s), gateway, and 5erver(s). 

Such communication with multiple server, can involve potentially quite remote servers 
accessed, for example, using the Intcinct. Such communication often involves substantial 
latencies, and in these circumstances it can be advantageous to group together batches of 
20 iransacliom for handling as a group. In this way a series of h^sactions to be carried out i. 
aent as a batch to a server (or servers), where they are processed and the results of each 
transaction are then bundled and returned together to the client. Where the communication 
latency is large in comparison with transaction processing time on the server, this approach 
can result in significantly improved performance. 

25 

As described above, any compromise of the customer database 204 alone is ineffective (in 
that no sensitive information is contained in that database alone), and for the same reason 
any compromise of the sender registry 304 alone, or the customer database 204 and the 
server registry 304 together in the absence of access to the secure hash server 106 is also 
30 mcflfective. Nevertheless, the information storage system may be vulnerable to a 
comprcmise of the eliem system 104 where such compromise is sufficiently extensive to 
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enable access to the customer database 204 and provide authorised access to the 
infonuation ser%'er 102. because such a compromise would allow a bnitc-force anack. The 
party gaining unauthorised access would be able to process the customer database 204. 
record by record, querying the infonnation server 102 for the completion of each record in 
tum. and thus possibly defeating the protection offered by the infonnation stoiage system 



5 



There are several methods that can be used to defeat or limit such compromise. Firstly, 
client access can be limited by rules appropriate to the business of tbe owner of the 
customer database 204. Such rules can include limitations by time of day. day of week. 

10 source IP address, and tnmsaetion frequency or velocity (number of transactions in a' 
certain time period), either alone or in combination. The consequences of an attempted or 
actual breach can include denial of access, slowing of access, or the raising of alanns 
either together or in combination. Furthermore, methods such as transaction throttling 
(enfoieing a minimum time between transactions) can make such bnite-force approaches 

15 ineffective and can lead to the consequences described above, including the raising of an 
alann, enabling the detection of the compromise. 

When data on the infonnaiion server 102 is updated (such as when a customer of an 
organisation using the system informs the organisation of his or her new credit card 

20 number), there is no requirement that the previously valid data be deleted. Transparently 
to the chent system 1 14. the information server 102 can keep track of any number of old 
versions of data by version or by timestamp. rather than over-writing them with the 
updated information each time. This approach of data "vetsioning" in the infonnation 
server 102 can give the client system 104 access to such facilities as roU-back of 

25 transactions very simply. Equally importantly, it can make the checkpointing of databases 
by time or by version easy to implement. 

There is no requirement to use all of the information in the output (the hash digest) 
produced by the secure hash server 106: it can be readily identified that the si^e (number of 
30 bits) in the output of the secure hash server 106 is only that required to make co-incidental 
matches unlikely. The use of 64 bits (for example) is more than sufficient in most cases 
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for this purpose, whereas common hash functions produce between 160 and 1024 bus in 
their output digests. 

The i„,e^o««c„ ofa Wcn„a«on fl»c«o„ (whc«,cr a simple ^«„i., «^«,„, ^ 

ou.p„, of ,h. .^.fo™.,^ ^^^^ ^^^^^ 

«n bea^luevcd cffecdvely t,^,,^^ U..«.*™.«o„ ^^^^^ 
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